4 matches found
CVE-2015-2916
Cross-site request forgery CSRF vulnerability on Securifi Almond devices with firmware before AL1-R201EXP10-L304-W34 and Almond-2015 devices with firmware before AL2-R088M allows remote attackers to hijack the authentication of arbitrary users...
CVE-2015-2916
Cross-site request forgery CSRF vulnerability on Securifi Almond devices with firmware before AL1-R201EXP10-L304-W34 and Almond-2015 devices with firmware before AL2-R088M allows remote attackers to hijack the authentication of arbitrary users...
CVE-2015-2916
CVE-2015-2916 affects Securifi Almond devices (AL1 firmware ≤ R201EXP10-L304-W34; Almond 2015 ≤ AL2-R088M). The flaw is a Cross-Site Request Forgery in the web management interface that lets an attacker hijack a user’s authenticated session and perform actions with the user’s privileges. The issu...
Securifi Almond routers contains multiple vulnerabilities
Overview Securifi Almond, firmware version AL1-R200-L302-W33 and earlier, and Securifi Almond 2015, firmware version AL2-R088 and earlier, contain multiple vulnerabilities. Description CWE-330: Use of Insufficiently Random Values - CVE-2015-2914Securifi Almond and Almond 2015 use static source...